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WE CLAIM: - 



1. A system for increasing the security and 
efficiency of cryptographic processing resources for 
postal frairking machines, comprising: 

(a) \an encryption engine; 

(b) me\ns for obtaining encrypted code in 
portions to be processed by the encryption 
engine; 

(c) random access memory; 

(d) means for placing decrypted output from 
the encryption\engine into the random 
access memory, 

2. A method for increasing the security and 
efficiency of cryptographic processing resources for 
postal franking machines, comprising 

(a) obtaining encrypted code\in portions to be 
processed by an encryption engine; 

■ \ 

(b) placing decrypted output fromythe 
encryption engine into random access memory. 

3. A system for protecting cryptographic 
processing and memory resources for postal frankr^g 
machines , compris ing : 

(a) (1) zeroizing circuitry, (2) readonly 
memory, (3) random access memory, (4J\ a 
clock circuit, (5) non-volatile memory 
(6) central cryptographic processor, (' 
logic for addressing and data flow, (8) 
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crypto key retention, (9) signature 
\ algorithm execution, (10) random number 
Venerator, (11) interrupt control and 
porting, (12) real time calendar 

clocking and watch-dog timer, (13) hash 

\ 

algo^4 thm ^ secure memory management 

unit, ^nd (15) host interface, all 
disposed^ within a PCMCIA Card; 



(b) means disposed within the PCMCIA Card 
for monitorihg the amount of time a host 
controller is \:aking to complete a bus 
transaction; 

(c) means disposed within the PCMCIA Card 
for comparing the monitored amount of 
time to a predetermined reference time; 

(d) means disposed withiA the PCMCIA Card 
for refusing to permit Completion of the 
bus transaction if the monitored amount 
of time exceeds the predetermined 
reference time; 

(e) an encryption engine disposed within 
the PCMCIA Card; 

(f) means for obtaining encrypted ^ode in 
portions to be processed by the 
encryption engine; 



(g) random access memory disposed with\Ln 
the PCMCIA Card; 



(h) means for placing decrypted output 
from the encryption engine into the 
random access memory. 
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\^ 4. A system for protecting cryptographic 
processing and memory resources for postal franking 
machines ,\comprising : 

\^ (a) (1) zeroizing circuitry, (2) read only 
\ memory, (3) random access memory, (4) a 
\ clock circuit, (5) non-volatile memory, 
\ (6) central cryptographic processor, (7) 
\^ logic for addressing and data flow, (8) 
\^rypto key retention, (9) signature 
algorithm execution, (10) random number 
generator, (11) interrupt control and 
porting, (12) real time calendar 

V 

clocking and watch-dog timer, (13) hash 
algorithm, (14) secure memory management 
unit, &jid (15) host interface, all 

disposed within a PCMCIA Card; 

\ 
\ 

V 

\ 

— (b) means disposed within the PCMCIA Card for 

monitoring thte amount of time a host 
controller is N^aking to complete a bus 

transaction; \ 

\ 
\ 

(c) means disposed v^ithin the PCMCIA Card for 

\ 

comparing the monitored amount of time to 
a predetermined reference time; 



(d) means disposed within the PCMCIA Card for 
refusing to permit completion of the bus 
transaction if the monitored amount of 
time exceeds the predetermined reference 
time . 



5, A system for protecting cryptographic 
0 processing and memory resources for postal\ franking 

machines, comprising an Application Specific Integrated 
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Circmit having (1) zeroizing circuitry, (2) read only 



memory, (3) random access memory, (4) a clock circuit, 
(5) nonvolatile memory, (6) central cryptographic 
processor, (7) logic for addressing and data flow, (8) 
crypto khy retention, (9) signature algorithm execution, 
(10) randc^ri number generator, (11) interrupt control and 
porting, (l x 2) real time calendar clocking and watch-dog 
timer, (13) nash algorithm, (14) secure memory management 
unit, and (15\host interface* 




10 6. A sVstem for protecting cryptographic 

processing and memory resources for postal franking 
machines, comprising : 

(a) an Application Specific Integrated 
Circuit^ having (1) zeroizing circuitry, 
(2) readvonly memory, (3) random access 
memory, (\) a clock circuit, (5) non- 
volatile memory, (6) central cryptographic 
processor, (\7) logic for addressing and 
data flow, (Bs) crypto key retention, (9) 
20 signature algorithm execution, (10) random 

number generators:, (11) interrupt control 
and porting, ( 12 K real time calendar 
clocking and watcWrdog timer, (13) hash 
algorithm, (14) sedtire memory management 
25 unit, and (15) host \interface; 



(b) said Application Specific Integrated 
Circuit being disposed wdthin a Personal 
Computer Memory International Association 
card. 



30 7. A method for protecting cryptographic 

processing and memory resources for postal franking 
machines, comprising locating the resources to be 
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protected within an Application Specific Integrated 

Circuit . 

\ 

\ 8. A system for protecting cryptographic 
processih^ and memory resources for postal franking 
machines, \comprising (1) zeroizing circuitry, (2) read 

only memor^, (3) random access memory, (4) a clock 

\ 

circuit, (5)\^non-volatile memory, (6) central 
cryptographic^processor , (7) logic for addressing and 
data flow, (8) \ crypto key retention, (9) signature 



algorithm execution, (10) random number generator, (11) 

\ 

interrupt control\ and porting, (12) real time calendar 
clocking and watctivdocj timer, (13) hash algorithm, (14) 
secure memory management unit, and (15) host interface, 
all disposed within \ PCMCIA Card. 

\ 

9. A method for protecting cryptographic 
processing and memory resources for postal franking 
machines, comprising locating the resources to be 

protected within a PCMCIA G.ard. 

\ 
\ 

10. A method for protecting cryptographic 
processing and memory resources for postal franking 
machines disposed within PCMCIA, Card, comprising: 

\ 

(a) monitoring the amount of time a host 
controller is taking^ to complete a bus 
transaction; 

(b) comparing the monitored amount of time to 
a predetermined reference time; 

(c) refusing to permit completion of the bus 
transaction if the monitorea amount of 
time exceeds the predetermined reference 
time . 
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11. A system for protecting cryptographic 
processii^g and memory resources for postal franking 
machines, \omprising: 



(a) \ an Application Specific Integrated Circuit 
having (1) zeroizing circuitry, (2) read only 
meiopry, (3) random access memory, (4) a clock 
circuit, (5) non-volatile memory, (6) central 
cryptographic processor, (7) logic for 
addressing and data flow, (8) crypto key 
retenti^, (9) signature algorithm execution, 
(10) random number generator, (11) interrupt 
control arid porting, (12) real time calendar 

clocking and watch-dog timer, (13) hash 

\ 

algorithm, (14) secure memory management 

\^ 

unit, and (15^ host interface; 

\ 

(b) an encryption Engine disposed within the 
PCMCIA Card; \ 

\ 

\ 

(c) means for obtaining encrypted code in 
portions to be proce^ed by the encryption 
engine ; 



\ 



(d) random access memory disposed within the 
PCMCIA Card; 



(e) means for placing decrypted output from the 
encryption engine into the raridom access 
memory. \ 



